HP Identity Driven Manager Software Licenses User Manual

2-7

Getting Started

Before You Begin

The basic operational model of IDM involves Users and Groups. Every User belongs
to a Group and, in IDM, these are called Access Policy Groups (APGs). Each APG
has an Access Policy defined for it, which governs the access rights that are applied
to its Users as they enter the network.

In the IDM GUI, the top level of the navigation tree is the Domain, with all other
information for APGs, and RADIUS Servers beneath the Domain in the navigation
tree. Users are linked to the Domain to which they belong, and the Access Policy
Group to which they are assigned.

The IDM configuration tools are available at the top level. The definition of times,
locations, network resources, and access profiles is independent of individual
Domains or Groups. You can define multiple locations, times, and network resources,
then create multiple access profiles to be applied to any Access Policy Group, in any
Domain that exists within IDM.